βΌ CVE-2023-24849 βΌ
π Read
via "National Vulnerability Database".
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.π Read
via "National Vulnerability Database".
βΌ CVE-2023-33039 βΌ
π Read
via "National Vulnerability Database".
Memory corruption in Automotive Display while destroying the image handle created using connected display driver.π Read
via "National Vulnerability Database".
βΌ CVE-2023-28540 βΌ
π Read
via "National Vulnerability Database".
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.π Read
via "National Vulnerability Database".
βΌ CVE-2023-44218 βΌ
π Read
via "National Vulnerability Database".
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege escalation (LPE) vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2023-33029 βΌ
π Read
via "National Vulnerability Database".
Memory corruption in DSP Service during a remote call from HLOS to DSP.π Read
via "National Vulnerability Database".
βΌ CVE-2023-24855 βΌ
π Read
via "National Vulnerability Database".
Memory corruption in Modem while processing security related configuration before AS Security Exchange.π Read
via "National Vulnerability Database".
βΌ CVE-2023-22382 βΌ
π Read
via "National Vulnerability Database".
Weak configuration in Automotive while VM is processing a listener request from TEE.π Read
via "National Vulnerability Database".
βΌ CVE-2023-28571 βΌ
π Read
via "National Vulnerability Database".
Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.π Read
via "National Vulnerability Database".
π΄ Ransomware Crisis, Recession Fears Leave CISOs in Tough Spot π΄
π Read
via "Dark Reading".
Combining robust decryption and orchestration of encrypted traffic with threat prevention is crucial to staying ahead of attackers.π Read
via "Dark Reading".
Dark Reading
Ransomware Crisis, Recession Fears Leave CISOs in Tough Spot
Combining robust decryption and orchestration of encrypted traffic with threat prevention is crucial to staying ahead of attackers.
π΄ Name That Edge Toon: Office Artifacts π΄
π Read
via "Dark Reading".
Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card.π Read
via "Dark Reading".
Dark Reading
Name That Edge Toon: Office Artifacts
Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card.
βΌ CVE-2022-47892 βΌ
π Read
via "National Vulnerability Database".
All versions of NetMan 204 could allow an unauthenticated remote attacker to read a file (config.cgi) containing sensitive information, like credentials.π Read
via "National Vulnerability Database".
βΌ CVE-2022-47893 βΌ
π Read
via "National Vulnerability Database".
There is a remote code execution vulnerability that affects all versions of NetMan 204. A remote attacker could upload a firmware file containing a webshell, that could allow him to execute arbitrary code as root.π Read
via "National Vulnerability Database".
βΌ CVE-2023-25989 βΌ
π Read
via "National Vulnerability Database".
Cross-Site Request Forgery (CSRF) vulnerability in Meks Video Importer, Meks Time Ago, Meks ThemeForest Smart Widget, Meks Smart Author Widget, Meks Audio Player, Meks Easy Maps, Meks Easy Photo Feed Widget, Meks Simple Flickr Widget, Meks Easy Ads Widget, Meks Smart Social Widget plugins leading toΓ dismiss or the popup.π Read
via "National Vulnerability Database".
βΌ CVE-2023-42508 βΌ
π Read
via "National Vulnerability Database".
JFrog Artifactory prior to version 7.66.0 is vulnerable to specific endpoint abuse with a specially crafted payload, which can lead to unauthenticated users being able to send emails with manipulated email body.π Read
via "National Vulnerability Database".
βΌ CVE-2023-5351 βΌ
π Read
via "National Vulnerability Database".
Cross-site Scripting (XSS) - Stored in GitHub repository salesagility/suitecrm prior to 7.14.1.π Read
via "National Vulnerability Database".
βΌ CVE-2023-39923 βΌ
π Read
via "National Vulnerability Database".
Cross-Site Request Forgery (CSRF) vulnerability in RadiusTheme The Post Grid plugin <=Γ 7.2.7 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-4098 βΌ
π Read
via "National Vulnerability Database".
It has been identified that the web application does not correctly filter input parameters, allowing SQL injections, DoS or information disclosure. As a prerequisite, it is necessary to log into the application.π Read
via "National Vulnerability Database".
βΌ CVE-2023-32792 βΌ
π Read
via "National Vulnerability Database".
Cross-Site Request Forgery (CSRF) vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to eliminate roles within the platform by sending a specifically crafted query to the server. The vulnerability is based on the absence of proper validation of the origin of incoming requests.π Read
via "National Vulnerability Database".
βΌ CVE-2023-40210 βΌ
π Read
via "National Vulnerability Database".
Cross-Site Request Forgery (CSRF) vulnerability in Sean Barton (Tortoise IT) SB Child List plugin <=Γ 4.5 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-40202 βΌ
π Read
via "National Vulnerability Database".
Cross-Site Request Forgery (CSRF) vulnerability in Hannes Etzelstorfer // codemiq WP HTML Mail plugin <=Γ 3.4.1 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-5353 βΌ
π Read
via "National Vulnerability Database".
Improper Access Control in GitHub repository salesagility/suitecrm prior to 7.14.1.π Read
via "National Vulnerability Database".